7.5
CVE-2006-3111
- EPSS 1.31%
- Veröffentlicht 21.06.2006 01:02:00
- Zuletzt bearbeitet 16.06.2026 22:26:25
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in main.php in Chipmailer 1.09 allow remote attackers to execute arbitrary SQL commands via multiple parameters, as demonstrated by (1) anfang, (2) name, (3) mail, (4) anrede, (5) vorname, (6) nachname, (7) gebtag, (8) gebmonat, and (9) gebjahr.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Chipmailer ≫ Chipmailer Version1.09
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.31% | 0.669 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=115024576618386&w=2
http://securitytracker.com/id?1016315
http://secunia.com/advisories/20643
http://www.securityfocus.com/bid/18463
http://www.vupen.com/english/advisories/2006/2359
https://exchange.xforce.ibmcloud.com/vulnerabilities/27158